PORTO-
FREI

Real-World Bug Hunting

A Field Guide to Web Hacking

von Yaworski, Peter   (Autor)

Learn how people break websites and how you can, too. Real-World Bug Hunting is the premier field guide to finding software bugs. Whether you're a cyber-security beginner who wants to make the internet safer or a seasoned developer who wants to write secure code, ethical hacker Peter Yaworski will show you how it's done. You'll learn about the most common types of bugs like cross-site scripting, insecure direct object references, and server-side request forgery. Using real-life case studies of rewarded vulnerabilities from applications like Twitter, Facebook, Google, and Uber, you'll see how hackers manage to invoke race conditions while transferring money, use URL parameter to cause users to like unintended tweets, and more. Each chapter introduces a vulnerability type accompanied by a series of actual reported bug bounties. The book's collection of tales from the field will teach you how attackers trick users into giving away their sensitive information and how sites may reveal their vulnerabilities to savvy users. You'll even learn how you could turn your challenging new hobby into a successful career. You'll learn: • How the internet works and basic web hacking concepts • How attackers compromise websites • How to identify functionality commonly associated with vulnerabilities • How to find bug bounty programs and submit effective vulnerability reports Real-World Bug Hunting is a fascinating soup-to-nuts primer on web security vulnerabilities, filled with stories from the trenches and practical wisdom. With your new understanding of site security and weaknesses, you can help make the web a safer place--and profit while you're at it.

eBook (EPUB)
ebook-Hilfe 

ebook-Format   ebook-Format ebook-Format ebook-Format ebook-Format   ebook-Format

EUR 39,99

Alle Preisangaben inkl. MwSt.

Auch verfügbar als:

Sofort per Download verfügbar

 
 

Produktbeschreibung

Learn how people break websites and how you can, too.

Real-World Bug Hunting is the premier field guide to finding software bugs. Whether you're a cyber-security beginner who wants to make the internet safer or a seasoned developer who wants to write secure code, ethical hacker Peter Yaworski will show you how it's done.

You'll learn about the most common types of bugs like cross-site scripting, insecure direct object references, and server-side request forgery. Using real-life case studies of rewarded vulnerabilities from applications like Twitter, Facebook, Google, and Uber, you'll see how hackers manage to invoke race conditions while transferring money, use URL parameter to cause users to like unintended tweets, and more.

Each chapter introduces a vulnerability type accompanied by a series of actual reported bug bounties. The book's collection of tales from the field will teach you how attackers trick users into giving away their sensitive information and how sites may reveal their vulnerabilities to savvy users. You'll even learn how you could turn your challenging new hobby into a successful career. You'll learn:

• How the internet works and basic web hacking concepts • How attackers compromise websites • How to identify functionality commonly associated with vulnerabilities • How to find bug bounty programs and submit effective vulnerability reports

Real-World Bug Hunting is a fascinating soup-to-nuts primer on web security vulnerabilities, filled with stories from the trenches and practical wisdom. With your new understanding of site security and weaknesses, you can help make the web a safer place--and profit while you're at it. 

Autoreninfo

Peter Yaworski is a self-taught developer and ethical hacker who began building websites exclusively with Drupal. Since then, he has expanded his interest to Rails, Android app development, and software security, while producing over 100 video tutorials and interviews on YouTube covering ethical hacking, web development, and Android to help teach others what he's learned. Peter continues to be an active bug bounty participant with thanks from Shopify, HackerOne, Salesforce, Twitter, Starbucks and the US Department of Defense among others. 

Mehr vom Verlag:

No Starch Press

Mehr aus der Reihe:

Modern Library

Mehr vom Autor:

Yaworski, Peter

Produktdetails

Medium: eBook
Format: EPUB
Kopierschutz: OHNE KOPIERSCHUTZ
Seiten: 264
Sprache: Englisch
Erschienen: Juli 2019
ISBN-10: 1593278624
ISBN-13: 9781593278625

Bestell-Nr.: 20240196 
Libri-Verkaufsrang (LVR):
Libri-Relevanz: 0 (max 9.999)
 

Ist ein Paket? 0
Rohertrag: 10,46 €
Porto: 1,84 €
Deckungsbeitrag: 8,62 €

LIBRI: 0000000
LIBRI-EK*: 26.91 € (28%)
LIBRI-VK: 39,99 €
Libri-STOCK: 1
* EK = ohne MwSt.
P_SALEALLOWED: AD AE AF AG AI AL AM AO AQ AR AS AT AU AW AX AZ BA BB BD BE BF BG BH BI BJ BL BM BN BO BQ BR BS BT BV BW BY BZ CC CD CF CG CH CI CK CL CM CN CO CR CU CV CW CX CY CZ DE DJ DK DM DO DZ EC EE EG EH ER ES ET FI FJ FK FM FO FR GA GB GD GE GF GG GH GI GL GM GN GP GQ GR GS GT GU GW GY HK HM HN HR HT HU ID IE IL IM IN IO IQ IR IS IT JE JM JO JP KE KG KH KI KM KN KP KR KW KY KZ LA LB LC LI LK LR LS LT LU LV LY MA MC MD ME MF MG MH MK ML MM MN MO MP MQ MR MS MT MU MV MW MX MY MZ NA NC NE NF NG NI NL NO NP NR NU NZ OM PA PE PF PG PH PK PL PM PN PR PS PT PW PY QA RE RO RS RU RW SA SB SC SD SE SG SH SI SJ SK SL SM SN SO SR SS ST SV SX SY SZ TC TD TF TG TH TJ TK TL TM TN TO TR TT TV TW TZ UA UG UM UY UZ VA VC VE VG VI VN VU WF WS YE YT ZA ZM ZW
DRM: 0
0 = Kein Kopierschutz
1 = PDF Wasserzeichen
2 = DRM Adobe
3 = DRM WMA (Windows Media Audio)
4 = MP3 Wasserzeichen
6 = EPUB Wasserzeichen

UVP: 2 
Warengruppe: 86360 

KNO: 00000000
KNO-EK*: € (%)
KNO-VK: 0,00 €
KNO-STOCK:

Einband: EPUB
Sprache: Englisch

Kunden, die diesen Artikel gekauft haben, kauften auch:

Im Themenkatalog stöbern

› Start › eBooks

Entdecken Sie mehr

Alle Preise inkl. MwSt. , innerhalb Deutschlands liefern wir immer versandkostenfrei . Informationen zum Versand ins Ausland .

Kostenloser Versand *

innerhalb eines Werktages

OHNE RISIKO

30 Tage Rückgaberecht

Käuferschutz

mit Geld-Zurück-Garantie